def register_submit():
# first, check to see if the username already exists. SELECT statement.
check_username_query = "SELECT * FROM user where username = '%s'" % request.form['username']
cursor.execute(check_username_query)
check_username_result = cursor.fetchone()
# second, if it't not taken, then insert the username into mysql
if (check_username_result is None):
# no match. insert
session['username'] = request.form['username']
real_name = request.form['real_name']
username = request.form['username']
password = request.form['password'].encode('utf-8')
hashed_password = bcrypt.hashpw(password, bcrypt.gensalt())
email = request.form['email']
username_insert_query = "INSERT INTO user VALUES (DEFAULT, %s, %s, %s, %s, NULL)"
cursor.execute(username_insert_query, (real_name, username, hashed_password, email))
conn.commit()
return render_template('index.html')
else:
# second b, if it is taken, send them back to the register page with a message
return redirect('/register?username=taken')
评论列表
文章目录
